RHBA-2011:1718 - Bug Fix Advisory

Topic

An updated esc package that fixes various bugs is now available for Red Hat
Enterprise Linux 6.

Description

The esc package contains the Smart Card Manager GUI (Graphical User Interface),
which allows the user to manage security smart cards. The primary function of
the tool is to enroll smart cards, so that they can be used for common
cryptographic operations, such as secure email and website access.

This update fixes the following bugs:

• If the user resized an ESC window and closed it, the window did not preserve

its size when opening it again. If the user wanted the window to be larger, for
example, to make it easier to read, the user had to resize the window every
single time when it was opened again. A patch has been applied to address this
issue and the previous window size is now restored when opening ESC. (BZ#253077)

• Previously, during the shut down sequence of the escd daemon, the daemon

reported a failure of certain instances. ESC terminated unexpectedly with a
segmentation fault as a consequence. This update modifies the daemon to exit
quietly. As a result, ESC no longer terminates unexpectedly. (BZ#682216)

• The esc-prefs.js file contains helpful commented settings designed to assist

the user in trying rarely used settings if the situation warrants. A number of
these settings in the file contained typos. The typos have been corrected with
this update. (BZ#702683)

• Previously, ESC could have terminated with a segmentation fault after the user

had inserted a new smart card into the reader. This was due to a bug in the code
which helped to bring a pop-up window to the foreground. The code is no longer
needed to assure window focus, therefore it is no longer being executed. As a
result, ESC no longer terminates in the scenario described. (BZ#704281)

All users of esc are advised to upgrade to this updated package, which fixes
these bugs.

Solution

Before applying this update, make sure all previously-released errata relevant
to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the Red
Hat Network to apply this update are available at
https://access.redhat.com/kb/docs/DOC-11259

Affected Products

• Red Hat Enterprise Linux Server 6 x86_64
• Red Hat Enterprise Linux Server 6 i386
• Red Hat Enterprise Linux Server from RHUI 6 x86_64
• Red Hat Enterprise Linux Server from RHUI 6 i386
• Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 x86_64
• Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 i386
• Red Hat Enterprise Linux Workstation 6 x86_64
• Red Hat Enterprise Linux Workstation 6 i386
• Red Hat Enterprise Linux Desktop 6 x86_64
• Red Hat Enterprise Linux Desktop 6 i386
• Red Hat Enterprise Linux for Power, big endian 6 ppc64
• Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6 x86_64
• Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension 6 i386

Fixes

• BZ - 682216 - [abrt] esc-1.1.0-21.el6: __strcmp_ssse3: Process /usr/lib64/esc-1.1.0/escd was killed by signal 11 (SIGSEGV)
• BZ - 702683 - esc-prefs.js file has a typo
• BZ - 704281 - [abrt] esc-1.1.0-12.fc14: Process /usr/lib64/esc-1.1.0/esc was killed by signal 11 (SIGSEGV)
• BZ - 729027 - Debuginfo package issues in esc

CVEs

(none)

References

(none)